Pagina 1 van 2

pc stopt met laden windows

Geplaatst: 10 jun 2017 21:07
door RicoSuave
Hallo,

Sinds vandaag wilt mijn pc ineens niet meer windows 7 laden. Ik zie wel het beginscherm van windows maar daarna blijft het vastzitten. Kan alleen nog maar in safemode opstarten.
Ik heb al een malware scan gedaan en een disccleaner.
Hopelijk kan iemand mij hiermee helpen.

De FRST txt

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 10-06-2017
Ran by TEK (administrator) on TEK-PC (10-06-2017 21:03:12)
Running from C:\Users\TEK\Downloads
Loaded Profiles: TEK (Available Profiles: TEK)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Safe Mode (with Networking)
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr64.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
() C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-03-22] (Adobe Systems Incorporated)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8781568 2016-02-06] (Realtek Semiconductor)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-05-31] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-05-31] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2313408 2016-04-07] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [WindowsDefender] => -
HKLM-x32\...\Winlogon: [Userinit] userinit.exe,,c:\program files (x86)\microsoft\watermark.exe
HKU\S-1-5-21-4167156354-4277329575-767256593-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7063832 2014-11-21] (Piriform Ltd)
HKU\S-1-5-21-4167156354-4277329575-767256593-1000\...\Run: [Xvid] => C:\Program Files (x86)\Xvid\CheckUpdate.exe [8192 2011-01-17] ()
HKU\S-1-5-21-4167156354-4277329575-767256593-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3042592 2017-06-08] (Valve Corporation)
HKU\S-1-5-21-4167156354-4277329575-767256593-1000\...\Run: [UTB Install] => C:\Users\TEK\Documents\Twitch bot\Ultimate Twitch Bot 3\Ultimate Twitch Bot 3.exe [867840 2017-01-20] (BluNET)
HKU\S-1-5-21-4167156354-4277329575-767256593-1000\...\Run: [Discord] => C:\Users\TEK\AppData\Local\Discord\app-0.0.297\Discord.exe [64290304 2017-01-04] (Hammer & Chisel, Inc.)
HKU\S-1-5-21-4167156354-4277329575-767256593-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2017-01-17] (Apple Inc.)
HKU\S-1-5-21-4167156354-4277329575-767256593-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27793888 2017-05-05] (Skype Technologies S.A.)
HKU\S-1-5-21-4167156354-4277329575-767256593-1000\...\Run: [Windows Defender] => -
HKU\S-1-5-21-4167156354-4277329575-767256593-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [899584 2010-11-21] (Microsoft Corporation)
HKU\S-1-5-18\...\Run: [script_fcbd] => "C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\fcbd.bat"
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-04-01] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-04-01] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-04-01] ()
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
Startup: C:\Users\TEK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk [2014-11-29]
ShortcutTarget: MagicDisc.lnk -> C:\Program Files (x86)\MagicDisc\MagicDisc.exe (MagicISO, Inc.)
GroupPolicy: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8C679C55-0A47-430F-A982-44458F016E4B}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{C756F9EF-B6D1-4337-9371-151C61A11027}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-4167156354-4277329575-767256593-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-4167156354-4277329575-767256593-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-4167156354-4277329575-767256593-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.nl/
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-11-18] (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-11-10] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2015-11-18] (Microsoft Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2014-01-22] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2015-11-10] (Microsoft Corporation)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2015-02-17] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: 5x0xux9d.default
FF ProfilePath: C:\Users\TEK\AppData\Roaming\Mozilla\Firefox\Profiles\5x0xux9d.default [2017-06-10]
FF Homepage: Mozilla\Firefox\Profiles\5x0xux9d.default -> hxxps://mysearch.avg.com/?cid={0836F4F2-F4ED-4F0A-A0B2-A6D25BE3D7EC}&mid=08bc1f58ab0647cd866a295fe0cf5912-0af4a39d448fb34092c460b6126e2dbd25421ef5&lang=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2015-07-18 13:00:04&v=4.2.1.951&pid=wtu&sg=&sap=hp
FF Extension: (Hide My Ass! Web Proxy) - C:\Users\TEK\AppData\Roaming\Mozilla\Firefox\Profiles\5x0xux9d.default\Extensions\extension@hidemyass.com.xpi [2015-12-12]
FF Extension: (YouTube™ Flash® Player) - C:\Users\TEK\AppData\Roaming\Mozilla\Firefox\Profiles\5x0xux9d.default\Extensions\jid1-HAV2inXAnQPIeA@jetpack.xpi [2017-01-09]
FF Extension: (AVG SafePrice) - C:\Users\TEK\AppData\Roaming\Mozilla\Firefox\Profiles\5x0xux9d.default\Extensions\sp@avg.com.xpi [2016-11-19]
FF Extension: (Video DownloadHelper) - C:\Users\TEK\AppData\Roaming\Mozilla\Firefox\Profiles\5x0xux9d.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2017-01-02]
FF Extension: (Flash and Video Download) - C:\Users\TEK\AppData\Roaming\Mozilla\Firefox\Profiles\5x0xux9d.default\Extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a} [2017-02-01]
FF SearchPlugin: C:\Users\TEK\AppData\Roaming\Mozilla\Firefox\Profiles\5x0xux9d.default\searchplugins\hma-proxy.xml [2015-12-12]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_171.dll [2017-05-09] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~3\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-04-07] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_171.dll [2017-05-09] ()
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-11-18] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-05-18] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-05-18] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-03-28] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-04-07] (Adobe Systems)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-11-18] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-12-17] (Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR StartupUrls: Default -> "hxxp://google.nl/"
CHR Profile: C:\Users\TEK\AppData\Local\Google\Chrome\User Data\Default [2017-06-10]
CHR Extension: (BetterTTV) - C:\Users\TEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2017-04-21]
CHR Extension: (Adblock Plus) - C:\Users\TEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-06-09]
CHR Extension: (AdBlock) - C:\Users\TEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-06-10]
CHR Extension: (Unlimited Free VPN - Hola) - C:\Users\TEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2017-06-05]
CHR Extension: (Twitch Now) - C:\Users\TEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlmbdmpjmlijibeockamioakdpmhjnpk [2017-05-28]
CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\TEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
CHR Extension: (Chrome Media Router) - C:\Users\TEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-06-06]
CHR HKU\S-1-5-21-4167156354-4277329575-767256593-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx

Opera:
=======
StartMenuInternet: (HKLM) OperaStable - C:\Program Files\Opera\Launcher.exe

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [694464 2016-04-07] (Adobe Systems Incorporated)
S2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2246256 2017-05-18] (Adobe Systems, Incorporated)
S2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
S2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-05-14] ()
S2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe [954648 2013-07-29] (ASUSTeK Computer Inc.)
S2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.04.03\AsusFanControlService.exe [1690424 2013-11-21] (ASUSTeK Computer Inc.)
S2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1428656 2017-05-31] (AVG Technologies CZ, s.r.o.)
S2 Ds3Service; C:\Program Files\Scarlet.Crush Productions\bin\ScpService.exe [388352 2013-05-05] (Scarlet.Crush Productions)
S4 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2945312 2016-01-14] (IObit)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4470736 2017-05-09] (Malwarebytes)
S2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-05-03] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-05-03] (NVIDIA Corporation)
S2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-05-18] (NVIDIA Corporation)
S2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [450168 2017-05-03] (NVIDIA Corporation)
S2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [5906704 2017-02-21] (AVG Technologies CZ, s.r.o.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.2.0.5\WsAppService.exe [411648 2016-03-31] (Wondershare) [File not signed]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2013-04-06] ()
S1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2012-09-15] ()
S3 ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [46152 2011-09-21] (MCCI Corporation)
S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2017-04-13] ()
S3 camfilt2; C:\Windows\System32\DRIVERS\camfilt2.sys [139264 2007-08-29] (Guillemot Corporation)
S1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2016-01-12] (REALiX(tm))
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2016-05-25] (Huawei Technologies Co., Ltd.)
S3 kinonivd; C:\Windows\System32\DRIVERS\kinonivd.sys [2782848 2014-11-12] (Windows (R) Win 7 DDK provider)
S3 KINONI_Wave; C:\Windows\System32\drivers\kinonivad.sys [23040 2014-11-12] (Windows (R) Win 7 DDK provider)
S3 ks2m2avs; C:\Windows\System32\Drivers\ks2m2avs.sys [359120 2013-07-24] (Native Instruments GmbH)
S3 ks2m2usb_svc; C:\Windows\System32\Drivers\ks2m2usb.sys [85200 2013-07-24] (Native Instruments GmbH)
S2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2017-04-13] ()
S2 MBAMChameleon; C:\Windows\system32\drivers\MBAMChameleon.sys [188312 2017-06-10] (Malwarebytes)
S3 MBAMFarflt; C:\Windows\system32\drivers\farflt.sys [113592 2017-06-10] (Malwarebytes)
S3 MBAMProtection; C:\Windows\system32\drivers\mbam.sys [44960 2017-06-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [252832 2017-06-10] (Malwarebytes)
S3 MBAMWebProtection; C:\Windows\system32\drivers\mwac.sys [84256 2017-06-10] (Malwarebytes)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30328 2017-05-03] (NVIDIA Corporation)
S3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [48248 2017-05-03] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [76840 2017-04-01] (NVIDIA Corporation)
S3 OM0530; C:\Windows\System32\Drivers\ov530vx.sys [172928 2007-07-13] (OmniVision Technology Inc.)
R3 ScpVBus; C:\Windows\System32\DRIVERS\ScpVBus.sys [39168 2013-05-05] (Scarlet.Crush Productions)
S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [163644 2017-05-11] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [File not signed]
S3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [32304 2017-02-21] (AVG Netherlands B.V.)
S3 VCSVADHWSer; C:\Windows\System32\DRIVERS\vcsvad.sys [21504 2008-12-26] (Avnex)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 hmatap; system32\DRIVERS\hmatap.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-06-10 21:03 - 2017-06-10 21:03 - 00020724 _____ C:\Users\TEK\Downloads\FRST.txt
2017-06-10 20:43 - 2017-06-10 21:03 - 00000000 ____D C:\FRST
2017-06-10 20:42 - 2017-06-10 20:42 - 02437120 _____ (Farbar) C:\Users\TEK\Downloads\FRST64.exe
2017-06-10 20:39 - 2017-06-10 20:39 - 00127248 _____ C:\Users\TEK\AppData\Local\GDIPFONTCACHEV1.DAT
2017-06-10 20:20 - 2017-06-10 20:20 - 00000000 ____D C:\Users\TEK\AppData\Local\ElevatedDiagnostics
2017-06-10 20:15 - 2017-06-10 20:28 - 00081760 _____ C:\Windows\ntbtlog.txt
2017-06-10 19:57 - 2017-06-10 20:00 - 05169896 _____ C:\Windows\system32\FNTCACHE.DAT
2017-06-10 18:48 - 2017-06-10 18:48 - 00000000 _____ C:\Users\TEK\AppData\Local\{CC4816CA-2CD0-4F88-A85D-7D3D00EAADA8}
2017-06-10 18:47 - 2017-06-10 20:00 - 00000000 ___HD C:\Users\Public\Documents\AdobeGC
2017-06-10 16:15 - 2017-06-10 16:15 - 104313268 _____ C:\Users\TEK\Downloads\Video 10-06-17 15 43 00.mov
2017-06-09 22:23 - 2017-06-09 22:26 - 865137681 _____ C:\Users\TEK\Downloads\Shenmue The Movie - English - Xbox Edition DVD.mp4
2017-06-09 14:54 - 2017-06-09 14:55 - 10742911 _____ C:\Users\TEK\Downloads\18840608_1840143796249993_4917829358845952000_n.mp4
2017-06-07 16:50 - 2017-06-07 16:50 - 51049177 _____ C:\Users\TEK\Downloads\Particle %2F liquid case study.mp4
2017-06-07 16:47 - 2017-06-07 16:47 - 89472657 _____ C:\Users\TEK\Downloads\The Space We Live In.mp4
2017-06-07 16:44 - 2017-06-07 16:44 - 22937979 _____ C:\Users\TEK\Downloads\Entering The Stronghold - Audio Visual Animation.mp4
2017-06-07 16:34 - 2017-06-07 16:34 - 07144489 _____ C:\Users\TEK\Downloads\Particles on Erlend.mp4
2017-06-07 16:19 - 2017-06-07 16:19 - 52446910 _____ C:\Users\TEK\Downloads\Oddly Satisfying Honey Video - Visual ASMR.mp4
2017-06-07 16:15 - 2017-06-07 16:15 - 46213466 _____ C:\Users\TEK\Downloads\Carbonated Galaxy.mp4
2017-06-07 16:12 - 2017-06-07 16:12 - 46318721 _____ C:\Users\TEK\Downloads\Melting Snow Closeup - 4k.mp4
2017-06-07 16:09 - 2017-06-07 16:10 - 16509892 _____ C:\Users\TEK\Downloads\Burning Light Bulbs in MACRO.mp4
2017-06-07 16:04 - 2017-06-07 16:05 - 44910618 _____ C:\Users\TEK\Downloads\Melting Crayon Art - 4k Macro Video - Relaxing.mp4
2017-06-07 15:25 - 2017-06-07 15:25 - 37948193 _____ C:\Users\TEK\Downloads\Playing With Steel Wool.mp4
2017-06-07 15:22 - 2017-06-07 15:23 - 39769450 _____ C:\Users\TEK\Downloads\Colors In Macro.mp4
2017-06-07 15:19 - 2017-06-07 15:20 - 50232716 _____ C:\Users\TEK\Downloads\Ink In Motion (1).mp4
2017-06-07 15:13 - 2017-06-07 15:14 - 77835222 _____ C:\Users\TEK\Downloads\INK DROPS 4K (ULTRA HD).mp4
2017-06-06 17:03 - 2017-06-06 17:05 - 168805516 _____ C:\Users\TEK\Downloads\TR-DYWM.7z
2017-06-06 16:50 - 2017-06-06 16:50 - 03052639 _____ C:\Users\TEK\Downloads\18145786_250052568803733_5538380557487964160_n (1).mp4
2017-06-06 16:38 - 2017-06-06 18:23 - 3814230375 _____ C:\Users\TEK\Desktop\Latin mix video.mp4
2017-06-05 11:46 - 2017-06-05 11:46 - 142065919 _____ C:\Users\TEK\Downloads\Evolution of Video Game Graphics 1962-2017.mp4
2017-06-05 11:43 - 2017-06-05 11:44 - 230116286 _____ C:\Users\TEK\Downloads\A Brief History of Video Games.mp4
2017-06-04 15:35 - 2017-06-04 15:35 - 01080870 _____ C:\Users\TEK\Downloads\[Guru3D.com]-DDU.zip
2017-06-04 11:52 - 2017-06-04 11:52 - 01931969 _____ C:\Users\TEK\Downloads\ProcessExplorer.zip
2017-06-03 21:05 - 2017-06-03 21:06 - 02012725 _____ C:\Users\TEK\Downloads\18801596_2031617246864087_3592303538203525120_n.mp4
2017-06-03 13:55 - 2017-06-10 18:47 - 00188312 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMChameleon.sys
2017-06-03 13:54 - 2017-06-10 20:28 - 00252832 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-06-03 13:54 - 2017-06-10 20:28 - 00044960 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-06-03 13:54 - 2017-06-10 19:58 - 00113592 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2017-06-03 13:54 - 2017-06-10 19:58 - 00084256 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-06-03 13:54 - 2017-06-03 13:54 - 00001867 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-06-03 13:54 - 2017-06-03 13:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-06-03 13:53 - 2017-06-10 20:28 - 00077376 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-06-03 13:53 - 2017-06-03 13:53 - 00000000 ____D C:\Program Files\Malwarebytes
2017-06-03 13:37 - 2017-06-03 17:16 - 00000000 ____D C:\Users\TEK\AppData\Roaming\SimpleStar
2017-06-03 00:22 - 2017-05-18 07:21 - 00134592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2017-06-03 00:20 - 2017-05-18 09:33 - 40201848 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 35349440 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 35282040 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 17426520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 14271608 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2017-06-03 00:20 - 2017-05-18 09:33 - 11056456 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 11027968 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 10551072 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 09248328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 09014976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 08808488 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 03437688 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 03020920 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 01988216 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6438233.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 01606592 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6438233.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 01055680 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 00993912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 00964216 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 00914880 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 00688968 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 00609912 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 00577728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 00507688 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 00499320 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 00426128 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 00406736 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 00170360 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 00153184 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 00148200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2017-06-03 00:20 - 2017-05-18 09:33 - 00131536 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2017-06-02 22:19 - 2017-06-02 22:19 - 00000000 ____D C:\Users\TEK\AppData\Local\FormulaFusion
2017-06-02 22:04 - 2017-06-02 22:04 - 00003816 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1496433852
2017-06-02 22:04 - 2017-06-02 22:04 - 00001093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2017-06-02 22:04 - 2017-06-02 22:04 - 00000000 ____D C:\Users\TEK\AppData\Roaming\Opera Software
2017-06-02 22:04 - 2017-06-02 22:04 - 00000000 ____D C:\Users\TEK\AppData\Local\Opera Software
2017-06-02 22:03 - 2017-06-02 22:04 - 00000000 ____D C:\Program Files\Opera
2017-06-02 13:20 - 2017-06-02 13:22 - 27593947 _____ C:\Users\TEK\Downloads\hd0993.mov
2017-06-02 13:16 - 2017-06-02 13:18 - 15536297 _____ C:\Users\TEK\Downloads\hd0536.mov
2017-06-02 13:16 - 2017-06-02 13:17 - 09878883 _____ C:\Users\TEK\Downloads\bokeh-H264 75.mov
2017-06-02 13:16 - 2017-06-02 13:17 - 08121873 _____ C:\Users\TEK\Downloads\Bokeh Background 2-H264 75 (1).mov
2017-06-02 13:15 - 2017-06-02 13:27 - 124213312 _____ C:\Users\TEK\Downloads\hd0969.mov
2017-06-02 13:15 - 2017-06-02 13:16 - 08121873 _____ C:\Users\TEK\Downloads\Bokeh Background 2-H264 75.mov
2017-06-02 13:15 - 2017-06-02 13:15 - 01348662 _____ C:\Users\TEK\Downloads\cometebyGY.mp4
2017-06-02 13:14 - 2017-06-02 13:15 - 09084977 _____ C:\Users\TEK\Downloads\VUMetersBlueVidevo.mov
2017-06-02 13:14 - 2017-06-02 13:15 - 07254392 _____ C:\Users\TEK\Downloads\overlay_14.mp4
2017-06-02 13:13 - 2017-06-02 13:17 - 34885046 _____ C:\Users\TEK\Downloads\NewsBackground1Videvo.mov
2017-06-02 13:12 - 2017-06-02 13:13 - 07807367 _____ C:\Users\TEK\Downloads\Apocalyptic.mp4
2017-06-01 21:30 - 2017-06-01 21:30 - 00000000 ____D C:\Users\TEK\AppData\LocalLow\FustyGame
2017-05-31 23:55 - 2017-06-03 01:23 - 00000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2017-05-31 23:51 - 2017-06-03 01:23 - 00000000 ____D C:\Users\TEK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2017-05-31 23:50 - 2017-06-03 01:23 - 00000000 ____D C:\Program Files (x86)\MSI Afterburner
2017-05-31 23:49 - 2017-05-31 23:49 - 00000000 ____D C:\Users\TEK\AppData\Local\Micro-Star_Int'l_Co.,_Ltd
2017-05-31 21:59 - 2017-06-03 14:05 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2017-05-31 21:59 - 2017-05-31 21:59 - 00000000 ____D C:\Users\TEK\AppData\Roaming\TeamViewer
2017-05-30 22:36 - 2017-05-30 22:36 - 00277173 _____ C:\Users\TEK\Downloads\Declaratie formulier.xlsx
2017-05-29 21:51 - 2017-05-29 21:51 - 14398676 _____ C:\Users\TEK\Downloads\Tweet feat. Missy Elliott - Oops (Oh My).mp4
2017-05-29 21:50 - 2017-05-29 21:55 - 16547728 _____ C:\Users\TEK\Downloads\Donell Jones - U Know Whats Up.mp4
2017-05-29 21:50 - 2017-05-29 21:50 - 60185599 _____ C:\Users\TEK\Downloads\Aaliyah - Are You That Somebody (Official HD Video).mp4
2017-05-29 21:49 - 2017-05-29 21:49 - 16224045 _____ C:\Users\TEK\Downloads\Lauryn Hill - Ex-Factor.mp4
2017-05-29 21:48 - 2017-05-29 21:48 - 24173212 _____ C:\Users\TEK\Downloads\Color Me Badd - I Adore Mi Amor (Video).mp4
2017-05-29 21:46 - 2017-05-29 21:47 - 18908360 _____ C:\Users\TEK\Downloads\Maxwell - Ascension (Dont Ever Wonder).mp4
2017-05-29 21:42 - 2017-05-29 21:43 - 22330443 _____ C:\Users\TEK\Downloads\Case - Happily Ever After.mp4
2017-05-29 21:40 - 2017-05-29 21:40 - 13260732 _____ C:\Users\TEK\Downloads\Mint Condition - Breakin My Heart (Pretty Brown Eyes).mp4
2017-05-29 21:37 - 2017-05-29 21:37 - 23006451 _____ C:\Users\TEK\Downloads\R. Kelly - I Cant Sleep Baby (If I).mp4
2017-05-29 21:36 - 2017-05-29 21:36 - 18933752 _____ C:\Users\TEK\Downloads\Sade - No Ordinary Love.mp4
2017-05-29 21:35 - 2017-05-29 21:35 - 17929403 _____ C:\Users\TEK\Downloads\Tyrese - Sweet Lady.mp4
2017-05-29 21:34 - 2017-05-29 21:34 - 12350483 _____ C:\Users\TEK\Downloads\Tevin Campbell - Can We Talk.mp4
2017-05-29 21:33 - 2017-05-29 21:37 - 20323749 _____ C:\Users\TEK\Downloads\Joe - I Wanna Know.mp4
2017-05-29 21:32 - 2017-05-29 21:33 - 18349434 _____ C:\Users\TEK\Downloads\Keith Sweat - Twisted (Official Video).mp4
2017-05-29 21:31 - 2017-05-29 21:32 - 39253373 _____ C:\Users\TEK\Downloads\Color Me Badd - I Wanna Sex You Up.mp4
2017-05-29 21:29 - 2017-05-29 21:29 - 20502150 _____ C:\Users\TEK\Downloads\Kelis - Caught Out There.mp4
2017-05-29 21:28 - 2017-05-29 21:28 - 22609492 _____ C:\Users\TEK\Downloads\Dru Hill - How Deep Is Your Love.mp4
2017-05-29 21:28 - 2017-05-29 21:28 - 18120712 _____ C:\Users\TEK\Downloads\Montell Jordan - Get It On Tonite.mp4
2017-05-29 21:27 - 2017-05-29 21:27 - 21510272 _____ C:\Users\TEK\Downloads\Aaliyah - If Your Girl Only Knew.mp4
2017-05-29 21:27 - 2017-05-29 21:27 - 11454340 _____ C:\Users\TEK\Downloads\Janet Jackson - Got till Its Gone.mp4
2017-05-29 21:26 - 2017-05-29 21:26 - 22142506 _____ C:\Users\TEK\Downloads\Guy - Do Me Right ft. Heavy D.mp4
2017-05-29 21:26 - 2017-05-29 21:26 - 21956295 _____ C:\Users\TEK\Downloads\Babyface - This Is For The Lover In You.mp4
2017-05-29 21:25 - 2017-05-29 21:25 - 22162589 _____ C:\Users\TEK\Downloads\Bell Biv DeVoe - Do Me! (Remix).mp4
2017-05-29 21:24 - 2017-05-29 21:24 - 22159736 _____ C:\Users\TEK\Downloads\New Edition - Hit Me Off.mp4
2017-05-29 21:24 - 2017-05-29 21:24 - 14989664 _____ C:\Users\TEK\Downloads\Groove Theory - TELL ME (Album Version).mp4
2017-05-29 21:23 - 2017-05-29 21:23 - 15818305 _____ C:\Users\TEK\Downloads\Monica - Dont Take It Personal (Just One Of Dem Days).mp4
2017-05-29 21:22 - 2017-05-29 21:33 - 22052704 _____ C:\Users\TEK\Downloads\Soul For Real - Candy Rain.mp4
2017-05-29 21:22 - 2017-05-29 21:23 - 25795027 _____ C:\Users\TEK\Downloads\Next - Too Close.mp4
2017-05-29 21:21 - 2017-05-29 21:21 - 14869762 _____ C:\Users\TEK\Downloads\Usher - You Make Me Wanna.mp4
2017-05-29 21:20 - 2017-05-29 21:23 - 08847296 _____ C:\Users\TEK\Downloads\Mary J blige - Real Love.mp4
2017-05-29 21:19 - 2017-05-29 21:19 - 24964619 _____ C:\Users\TEK\Downloads\Blackstreet - No Diggity ft. Dr. Dre Queen Pen.mp4
2017-05-28 22:25 - 2017-05-28 22:25 - 78579710 _____ C:\Users\TEK\Downloads\New York in 4K.mp4
2017-05-28 22:25 - 2017-05-28 22:25 - 49962601 _____ C:\Users\TEK\Downloads\Chicago in 4k.mp4
2017-05-28 22:24 - 2017-05-28 22:24 - 57167267 _____ C:\Users\TEK\Downloads\Quito Ecuador in 4K.mp4
2017-05-28 22:23 - 2017-05-28 22:24 - 69818989 _____ C:\Users\TEK\Downloads\Barcelona in 4K.mp4
2017-05-28 22:22 - 2017-05-28 22:23 - 67579377 _____ C:\Users\TEK\Downloads\Vienna in 4K.mp4
2017-05-28 22:22 - 2017-05-28 22:22 - 62659670 _____ C:\Users\TEK\Downloads\Punta Cana in 4K.mp4
2017-05-28 22:21 - 2017-05-28 22:21 - 71225883 _____ C:\Users\TEK\Downloads\London in 4K.mp4
2017-05-28 22:20 - 2017-05-28 22:20 - 62006368 _____ C:\Users\TEK\Downloads\Bruges in 4K.mp4
2017-05-28 22:19 - 2017-05-28 22:20 - 67552614 _____ C:\Users\TEK\Downloads\Miami in 4K.mp4
2017-05-28 02:14 - 2017-05-28 02:14 - 00000000 ____D C:\Users\TEK\Documents\Vanquish
2017-05-26 23:05 - 2017-05-26 23:05 - 00000720 _____ C:\Users\TEK\Desktop\Vanquish.lnk
2017-05-26 23:05 - 2017-05-26 23:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vanquish
2017-05-25 00:35 - 2017-05-25 00:35 - 00000744 __RSH C:\ProgramData\ntuser.pol
2017-05-24 20:23 - 2017-05-24 20:23 - 00008922 _____ C:\Users\TEK\Documents\Expermental hiphop.m3u8
2017-05-21 22:38 - 2017-05-21 22:54 - 00000556 _____ C:\Users\TEK\Desktop\Fundamentally ill DJ beatmaker online course.txt
2017-05-21 21:29 - 2017-05-21 22:01 - 00000000 ____D C:\ProgramData\mgs
2017-05-21 21:29 - 2017-05-21 21:29 - 00000000 ____D C:\Microgaming
2017-05-21 16:47 - 2017-05-21 16:58 - 00000000 ____D C:\Users\TEK\Documents\GTA Vice City User Files
2017-05-21 16:27 - 2017-05-21 16:27 - 00001229 _____ C:\Users\Public\Desktop\Grand Theft Auto Vice City.lnk
2017-05-21 16:27 - 2017-05-21 16:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mr DJ
2017-05-21 16:24 - 2017-05-21 16:24 - 00000000 ____D C:\Program Files (x86)\Mr DJ
2017-05-20 18:48 - 2017-05-20 18:48 - 00002847 _____ C:\Windows\SysWOW64\servers.def.vpx
2017-05-20 18:48 - 2017-05-20 18:48 - 00000446 _____ C:\Windows\SysWOW64\prod-pgm.vpx
2017-05-20 18:47 - 2017-05-20 18:47 - 00000039 _____ C:\Windows\SysWOW64\Stats.ini
2017-05-19 21:31 - 2017-06-10 21:02 - 00000016 _____ C:\Windows\SysWOW64\dmlconf.dat
2017-05-19 21:29 - 2017-06-09 00:14 - 00000000 __SHD C:\Users\TEK\AppData\Local\.#
2017-05-14 21:34 - 2017-05-14 21:35 - 164739803 _____ C:\Users\TEK\Downloads\Makers Gamers Street Fighter.mp4
2017-05-14 03:15 - 2017-05-14 03:16 - 42301731 _____ C:\Users\TEK\Downloads\Icons - Mortal Kombat - Part 2.mp4
2017-05-14 03:13 - 2017-05-14 03:14 - 40715853 _____ C:\Users\TEK\Downloads\Icons - Mortal Kombat - Part 1.mp4
2017-05-14 03:09 - 2017-05-14 03:10 - 29807425 _____ C:\Users\TEK\Downloads\Mortal Kombat - History of Fatalities [Part 1].mp4
2017-05-13 02:57 - 2017-05-13 02:57 - 00000000 ____D C:\Users\TEK\AppData\Local\StreetFighterV_NewCFNBeta
2017-05-11 15:36 - 2017-05-11 15:36 - 00235298 _____ C:\Users\TEK\Downloads\BAX-PACK-4097502.pdf

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-06-10 20:23 - 2014-11-26 02:11 - 00000000 ____D C:\Program Files (x86)\Steam
2017-06-10 20:17 - 2015-12-30 14:22 - 00000000 ____D C:\Users\TEK\AppData\Local\CrashDumps
2017-06-10 20:16 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-06-10 20:03 - 2009-07-14 06:45 - 00026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-06-10 20:03 - 2009-07-14 06:45 - 00026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-06-10 20:00 - 2016-03-01 20:21 - 00000000 ____D C:\ProgramData\NVIDIA
2017-06-10 19:23 - 2014-11-28 01:12 - 00000000 ____D C:\Users\TEK\Documents\My Games
2017-06-10 19:21 - 2015-10-10 12:52 - 00000000 ____D C:\Users\TEK\Documents\FILES
2017-06-10 19:09 - 2014-11-27 00:04 - 00000000 ____D C:\Users\TEK\AppData\Roaming\uTorrent
2017-06-10 19:08 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2017-06-10 18:01 - 2014-11-26 04:37 - 00000000 ____D C:\Users\TEK\AppData\Roaming\Skype
2017-06-10 17:28 - 2016-03-04 00:54 - 00000000 ____D C:\Users\TEK\Downloads\Timbaland - King Stays King - HotNewHipHop
2017-06-10 15:23 - 2016-09-21 07:54 - 00003600 _____ C:\Windows\System32\Tasks\AVG EUpdate Task
2017-06-10 02:43 - 2017-01-03 17:24 - 00000000 ____D C:\Users\TEK\AppData\Roaming\obs-studio
2017-06-10 02:00 - 2014-11-28 18:02 - 00000000 ____D C:\Users\TEK\AppData\Local\Adobe
2017-06-10 01:52 - 2014-11-26 01:32 - 00000000 ____D C:\Users\TEK
2017-06-09 19:39 - 2014-11-29 07:42 - 00001463 _____ C:\Users\TEK\ggpo-ng.ini
2017-06-09 19:30 - 2014-11-29 07:47 - 00006577 _____ C:\Users\TEK\ggpofba-ng.bkp.ini
2017-06-06 01:49 - 2014-11-26 01:57 - 00002215 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-06-06 01:17 - 2014-12-01 16:47 - 00000000 ____D C:\Users\TEK\AppData\Roaming\vlc
2017-06-05 00:33 - 2017-01-27 21:46 - 00000000 ____D C:\Users\TEK\AppData\Roaming\discord
2017-06-05 00:29 - 2009-07-14 07:08 - 00032566 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-06-03 20:13 - 2015-04-11 17:42 - 00000000 ____D C:\Users\TEK\Downloads\Sleeping Dogs OST
2017-06-03 20:07 - 2015-02-23 15:37 - 00000000 ____D C:\Users\TEK\Downloads\Roy Ayers
2017-06-03 16:54 - 2014-11-29 06:03 - 00000000 ____D C:\Program Files (x86)\MagicDisc
2017-06-03 16:50 - 2016-08-08 18:49 - 00000000 ____D C:\Users\TEK\AppData\Local\Microsoft Windows
2017-06-03 13:53 - 2014-11-26 04:45 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-06-03 13:53 - 2014-11-26 04:45 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2017-06-03 13:43 - 2016-01-12 16:51 - 00000000 ____D C:\ProgramData\ProductData
2017-06-03 13:42 - 2016-01-12 16:50 - 00002878 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (TEK)
2017-06-03 13:42 - 2016-01-12 16:50 - 00000000 ____D C:\ProgramData\IObit
2017-06-03 12:40 - 2014-11-27 08:37 - 00007602 _____ C:\Users\TEK\AppData\Local\Resmon.ResmonCfg
2017-06-03 00:50 - 2017-03-10 18:34 - 00000126 _____ C:\Users\TEK\Desktop\mobiel nummers.txt
2017-06-03 00:46 - 2016-01-17 23:13 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2017-06-03 00:46 - 2016-01-17 23:13 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2017-06-03 00:23 - 2016-12-27 13:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-06-03 00:23 - 2015-02-20 20:37 - 00000000 ____D C:\Temp
2017-06-03 00:23 - 2014-11-26 03:03 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-06-03 00:22 - 2016-03-24 23:48 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-06-02 21:55 - 2016-01-17 23:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2017-06-02 14:27 - 2016-01-12 16:50 - 00000000 ____D C:\Users\TEK\AppData\Roaming\IObit
2017-06-02 14:27 - 2014-11-25 04:28 - 00000000 ____D C:\AdwCleaner
2017-06-01 23:42 - 2015-06-24 21:44 - 00000000 ____D C:\Users\TEK\AppData\Local\Ubisoft Game Launcher
2017-05-31 23:55 - 2015-01-15 14:02 - 00000000 ____D C:\Windows\SysWOW64\directx
2017-05-31 00:43 - 2009-07-14 04:34 - 00000614 _____ C:\Windows\win.ini
2017-05-31 00:43 - 2009-07-14 04:34 - 00000241 _____ C:\Windows\system.ini
2017-05-31 00:37 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2017-05-31 00:30 - 2016-07-18 16:53 - 00000000 ____D C:\Users\TEK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2017-05-29 15:31 - 2015-12-09 13:13 - 00000000 ____D C:\ProgramData\Avg
2017-05-29 15:31 - 2014-11-26 01:58 - 00000000 ____D C:\Program Files (x86)\AVG
2017-05-28 11:32 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2017-05-27 12:35 - 2009-07-14 07:13 - 00786622 _____ C:\Windows\system32\PerfStringBackup.INI
2017-05-25 00:34 - 2009-07-14 05:20 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2017-05-24 20:17 - 2014-12-02 02:43 - 00000000 ____D C:\Program Files (x86)\Winamp
2017-05-22 23:47 - 2014-11-26 03:10 - 00000000 ____D C:\Users\TEK\AppData\Local\NVIDIA Corporation
2017-05-21 16:47 - 2015-01-20 19:46 - 00000000 ____D C:\Users\TEK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2017-05-20 19:25 - 2016-02-09 13:46 - 00000000 ____D C:\ProgramData\Origin
2017-05-20 19:25 - 2016-02-09 13:46 - 00000000 ____D C:\ProgramData\Electronic Arts
2017-05-20 18:46 - 2015-12-09 21:53 - 00000000 ____D C:\Users\TEK\AppData\Local\AvgSetupLog
2017-05-20 18:24 - 2017-05-03 00:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sega
2017-05-20 18:05 - 2017-04-10 04:27 - 00159496 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgstm.sys.149529634620201
2017-05-18 21:50 - 2016-08-03 16:52 - 00000000 ____D C:\Users\TEK\Desktop\BEATKITCHEN FILES
2017-05-18 09:33 - 2017-05-10 23:31 - 28593088 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2017-05-18 09:33 - 2017-04-08 18:22 - 16436488 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2017-05-18 09:33 - 2016-12-27 13:04 - 00491208 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2017-05-18 09:33 - 2016-12-27 13:03 - 03603672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2017-05-18 09:33 - 2016-08-22 15:18 - 00042897 _____ C:\Windows\system32\nvinfo.pb
2017-05-18 09:33 - 2016-03-01 20:19 - 20066768 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2017-05-18 09:33 - 2016-03-01 20:19 - 13402816 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2017-05-18 09:33 - 2016-03-01 20:19 - 04090016 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2017-05-18 07:55 - 2016-12-27 13:05 - 00001951 _____ C:\Windows\NvContainerRecovery.bat
2017-05-18 07:48 - 2016-03-01 20:20 - 06437824 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2017-05-18 07:48 - 2016-03-01 20:20 - 02479736 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2017-05-18 07:48 - 2016-03-01 20:20 - 01762936 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2017-05-18 07:48 - 2016-03-01 20:20 - 00548984 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2017-05-18 07:48 - 2016-03-01 20:20 - 00392312 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2017-05-18 07:48 - 2016-03-01 20:20 - 00081856 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2017-05-18 07:48 - 2016-03-01 20:20 - 00069752 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2017-05-16 22:44 - 2014-11-26 04:37 - 00000000 ___RD C:\Program Files (x86)\Skype
2017-05-16 22:44 - 2014-11-26 04:36 - 00000000 ____D C:\ProgramData\Skype
2017-05-16 22:37 - 2017-03-09 20:35 - 00003246 _____ C:\Windows\System32\Tasks\Driver Booster Scheduler
2017-05-16 22:37 - 2017-03-09 20:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 4
2017-05-16 20:09 - 2016-03-01 20:20 - 07993157 _____ C:\Windows\system32\nvcoproc.bin
2017-05-11 12:42 - 2015-01-27 19:37 - 00000034 _____ C:\Users\TEK\AppData\Roaming\AdobeWLCMCache.dat
2017-05-11 00:48 - 2016-05-05 22:07 - 00163644 _____ (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) C:\Windows\SysWOW64\Drivers\SECDRV.SYS
2017-05-11 00:44 - 2015-12-02 21:48 - 00000000 ____D C:\Users\TEK\AppData\Roaming\Sega
2017-05-11 00:42 - 2014-11-26 01:38 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information

==================== Files in the root of some directories =======

2015-01-27 19:37 - 2017-05-11 12:42 - 0000034 _____ () C:\Users\TEK\AppData\Roaming\AdobeWLCMCache.dat
2016-01-12 14:47 - 2016-01-12 14:47 - 0159200 ____T () C:\Users\TEK\AppData\Roaming\CrashRpt1402.dll
2015-06-14 14:48 - 2015-06-14 14:48 - 212585352 _____ () C:\Users\TEK\AppData\Local\ACCCx3_1_0_108.zip.aamdownload
2015-06-14 14:48 - 2015-06-14 14:48 - 0002489 _____ () C:\Users\TEK\AppData\Local\ACCCx3_1_0_108.zip.aamdownload.aamd
2015-07-30 18:45 - 2017-02-10 13:15 - 0001456 _____ () C:\Users\TEK\AppData\Local\Adobe Save for Web 13.0 Prefs
2014-11-30 23:20 - 2014-11-30 23:20 - 0000000 ___SH () C:\Users\TEK\AppData\Local\LumaEmu
2014-11-27 08:37 - 2017-06-03 12:40 - 0007602 _____ () C:\Users\TEK\AppData\Local\Resmon.ResmonCfg
2017-06-10 18:48 - 2017-06-10 18:48 - 0000000 _____ () C:\Users\TEK\AppData\Local\{CC4816CA-2CD0-4F88-A85D-7D3D00EAADA8}
2014-11-27 01:21 - 2014-11-27 01:21 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-06-04 13:20

==================== End of FRST.txt ============================

Re: pc stopt met laden windows

Geplaatst: 10 jun 2017 21:08
door RicoSuave
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 10-06-2017
Ran by TEK (10-06-2017 21:03:31)
Running from C:\Users\TEK\Downloads
Windows 7 Ultimate Service Pack 1 (X64) (2014-11-25 23:31:45)
Boot Mode: Safe Mode (with Networking)
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-4167156354-4277329575-767256593-500 - Administrator - Disabled)
Guest (S-1-5-21-4167156354-4277329575-767256593-501 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-4167156354-4277329575-767256593-1002 - Limited - Enabled)
TEK (S-1-5-21-4167156354-4277329575-767256593-1000 - Administrator - Enabled) => C:\Users\TEK

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-4167156354-4277329575-767256593-1000\...\uTorrent) (Version: 3.5.0.43804 - BitTorrent Inc.)
Aaero version 1.0 (HKLM-x32\...\Aaero_is1) (Version: 1.0 - Reverb Triple XP) <==== ATTENTION
Absolute Drift Zen Edition (HKLM-x32\...\Absolute Drift Zen Edition_is1) (Version: - )
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 17.0.0.172 - Adobe Systems Incorporated)
Adobe Bridge CC (64 Bit) (HKLM-x32\...\{359F8007-6486-429C-A8C5-D67F6897C88C}) (Version: 6.2 - Adobe Systems Incorporated)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.6.0.248 - Adobe Systems Incorporated)
Adobe Flash Player 25 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 25.0.0.171 - Adobe Systems Incorporated)
Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated)
Adobe Illustrator CC 2014 (HKLM-x32\...\{2B4B4082-8043-4646-8334-B0A29E641211}) (Version: 18.0 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Photoshop CC 2014 (HKLM-x32\...\{D7A4F897-B20A-42D0-862D-CB5F6DB7391D}) (Version: 15.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.20) - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-AB0000000001}) (Version: 11.0.20 - Adobe Systems Incorporated)
Adobe Update Management Tool (HKLM-x32\...\{534A7A1A-7102-4AF6-23EA-7CD279C7B625}_is1) (Version: 8.0 - PainteR)
AI Suite 3 (HKLM-x32\...\{D46DA5F0-25AD-4B77-98DA-6DD6AF39FBD9}) (Version: 1.00.58 - ASUSTeK Computer Inc.)
Ansel (Version: 382.05 - NVIDIA Corporation) Hidden
Apple Application Support (32-bit) (HKLM-x32\...\{9BA1A894-B42F-4805-BC8C-349C905A3930}) (Version: 5.3.1 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{7EAC8A42-9FAC-4F6B-AABF-C08C9F2E0F13}) (Version: 5.3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.10 - Michael Tippach)
AVG PC TuneUp (HKLM-x32\...\AVG PC TuneUp) (Version: 16.74.2.60831 - AVG Technologies)
AVG PC TuneUp (x32 Version: 16.74.1 - AVG Technologies) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.00 - Piriform)
CDisplayEx 1.9.9 (HKLM\...\CDisplayEx_is1) (Version: - cdisplayex.com)
Cool Edit Pro 2.1 (HKLM-x32\...\Cool Edit Pro 2.1) (Version: - )
DiRT 3 Complete Edition (HKLM\...\Steam App 321040) (Version: - Codemasters Racing Studio)
Discord (HKU\S-1-5-21-4167156354-4277329575-767256593-1000\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
Driver Booster 4.4 (HKLM-x32\...\Driver Booster_is1) (Version: 4.4.0 - IObit)
Edirol HQ Orchestral VSTi v1.03 (HKLM-x32\...\Edirol HQ Orchestral VSTi v1.03) (Version: - )
eLicenser Control (HKLM-x32\...\eLicenser Control) (Version: - Steinberg Media Technologies GmbH)
Emergency Download Driver (HKLM-x32\...\{3F0F5AB4-C9CE-4226-8393-E9CFF8369D9D}) (Version: 1.1.16.1526 - Microsoft)
FL Studio 10 (HKLM-x32\...\FL Studio 10) (Version: - Image-Line)
FMW 1 (Version: 1.203.1 - AVG Technologies) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 59.0.3071.86 - Google Inc.)
Google Earth (HKLM-x32\...\{F6430171-B86B-4639-839E-374913E7911D}) (Version: 7.1.8.3036 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
Grand Theft Auto Vice City version 1.1.0.0 (HKLM-x32\...\Grand Theft Auto Vice City_is1) (Version: 1.1.0.0 - Mr DJ)
iCloud (HKLM\...\{0493048C-CB1A-44B7-8BB3-8467AF7BA9E4}) (Version: 6.1.2.13 - Apple Inc.)
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version: - Image-Line)
INSIDE (HKLM-x32\...\1916896012_is1) (Version: 2.2.0.4 - GOG.com)
iTunes (HKLM\...\{9D0D2A8B-7E7B-4D88-8D50-24286ED6A5EB}) (Version: 12.5.5.5 - Apple Inc.)
Jupiter-8V2 2.5.0 (HKLM-x32\...\jupiter8v25_is1) (Version: 2.5.0 - Arturia)
Little Nightmares (HKLM-x32\...\Little Nightmares_is1) (Version: - )
Magic ISO Maker v5.4 (build 0239) (HKLM-x32\...\Magic ISO Maker v5.4 (build 0239)) (Version: - )
MagicDisc 2.7.106 (HKLM-x32\...\MagicDisc 2.7.106) (Version: - )
Malwarebytes version 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes)
Microsoft .NET Framework 4.6.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01590 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{42AA4CA8-DCD8-4308-BCAB-0B6D75856A9D}) (Version: 3.5.95.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50906.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x64 8.0.61000 (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{a2199617-3609-410f-a8e8-e8806c73545b}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
Microsoft Xbox One Controller for Windows (HKLM\...\{DC2CB48C-FD96-48EB-A36A-7D995BB587EB}) (Version: 1.0.2 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
minimoog-v 2.5.1 (HKLM-x32\...\minimoogv2_5_is1) (Version: 2.5.1 - Arturia)
MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com)
Native Instruments Audio 2 DJ Driver (HKLM-x32\...\Native Instruments Audio 2 DJ Driver) (Version: - Native Instruments)
Native Instruments Audio 4 DJ Driver (HKLM-x32\...\Native Instruments Audio 4 DJ Driver) (Version: - Native Instruments)
Native Instruments Audio 8 DJ Driver (HKLM-x32\...\Native Instruments Audio 8 DJ Driver) (Version: - Native Instruments)
Native Instruments Controller Editor (HKLM-x32\...\Native Instruments Controller Editor) (Version: 2.0.2.150 - Native Instruments)
Native Instruments Elektrik Piano (HKLM-x32\...\Native Instruments Elektrik Piano) (Version: - )
Native Instruments Guitar Rig 5 (HKLM-x32\...\Native Instruments Guitar Rig 5) (Version: - Native Instruments)
Native Instruments Guitar Rig Mobile I/O (HKLM-x32\...\Native Instruments Guitar Rig Mobile I/O) (Version: - Native Instruments)
Native Instruments Guitar Rig Session I/O (HKLM-x32\...\Native Instruments Guitar Rig Session I/O) (Version: - Native Instruments)
Native Instruments Kontakt 5 (HKLM-x32\...\Native Instruments Kontakt 5) (Version: 5.3.0.6464 - Native Instruments)
Native Instruments Rig Kontrol 3 (HKLM-x32\...\Native Instruments Rig Kontrol 3) (Version: - Native Instruments)
Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version: 2.6.0.137 - Native Instruments)
Native Instruments Traktor 2 (HKLM-x32\...\Native Instruments Traktor 2) (Version: 2.11.0.23 - Native Instruments)
Native Instruments Traktor Audio 10 Driver (HKLM-x32\...\Native Instruments Traktor Audio 10 Driver) (Version: - Native Instruments)
Native Instruments Traktor Audio 2 Driver (HKLM-x32\...\Native Instruments Traktor Audio 2 Driver) (Version: - Native Instruments)
Native Instruments Traktor Audio 2 MK2 Driver (HKLM-x32\...\Native Instruments Traktor Audio 2 MK2 Driver) (Version: - Native Instruments)
Native Instruments Traktor Audio 6 Driver (HKLM-x32\...\Native Instruments Traktor Audio 6 Driver) (Version: - Native Instruments)
Native Instruments Traktor Kontrol D2 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol D2 Driver) (Version: - Native Instruments)
Native Instruments Traktor Kontrol F1 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol F1 Driver) (Version: - Native Instruments)
Native Instruments Traktor Kontrol S2 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol S2 Driver) (Version: - Native Instruments)
Native Instruments Traktor Kontrol S2 MK2 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol S2 MK2 Driver) (Version: - Native Instruments)
Native Instruments Traktor Kontrol S4 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol S4 Driver) (Version: - Native Instruments)
Native Instruments Traktor Kontrol S4 MK2 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol S4 MK2 Driver) (Version: - Native Instruments)
Native Instruments Traktor Kontrol S5 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol S5 Driver) (Version: - Native Instruments)
Native Instruments Traktor Kontrol S8 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol S8 Driver) (Version: - Native Instruments)
Native Instruments Traktor Kontrol X1 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol X1 Driver) (Version: - Native Instruments)
Native Instruments Traktor Kontrol X1 MK2 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol X1 MK2 Driver) (Version: - Native Instruments)
Native Instruments Traktor Kontrol Z1 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol Z1 Driver) (Version: - Native Instruments)
Native Instruments Traktor Kontrol Z2 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol Z2 Driver) (Version: - Native Instruments)
NBA Playgrounds (HKLM\...\bmJhcGxheWdyb3VuZHM_is1) (Version: 1 - )
NirSoft BlueScreenView (HKLM-x32\...\NirSoft BlueScreenView) (Version: - )
Noise Reduction Plug-In 2.0 (HKLM-x32\...\{847C6940-D852-11E2-81D2-F04DA23A5C58}) (Version: 2.0.596 - Sony)
NVIDIA 3D Vision Controller Driver 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 382.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 382.33 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.6.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.6.0.74 - NVIDIA Corporation)
NVIDIA Graphics Driver 382.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 382.33 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.26 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.26 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.17.0329 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation)
NvNodejs (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 2.4.10.0 - NVIDIA Corporation) Hidden
NvvHci (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 18.0.1 - OBS Project)
OlliOlli2 - Welcome to Olliwood (HKLM-x32\...\1438603531_is1) (Version: 2.2.0.3 - GOG.com)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Opera Stable 45.0.2552.888 (HKLM-x32\...\Opera 45.0.2552.888) (Version: 45.0.2552.888 - Opera Software)
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2-r5875) (Version: - )
Pioneer DJ DDJ_SB2 Driver (HKLM-x32\...\Pioneer DJ DDJ_SB2 ASIO) (Version: 1.100.000.002 - Pioneer DJ Corporation.)
Premium Pool (HKLM\...\Steam App 434110) (Version: - Iceflake Studios)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Rapture3D 2.5.1 Game (HKLM-x32\...\{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1) (Version: - Blue Ripple Sound)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.67.1226.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7673 - Realtek Semiconductor Corp.)
Reloop ASIO Driver 1.152 (HKLM\...\Reloop ASIO Driver 1.152) (Version: 1.152 - Reloop)
Safari (HKLM-x32\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version: - Microsoft) Hidden
SHIELD Streaming (Version: 7.1.0370 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
Sine Mora 1.00 (HKLM-x32\...\Sine Mora 1.00) (Version: 1.00 - Cat-A-Cat)
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype™ 7.35 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.35.103 - Skype Technologies S.A.)
Sleeping Dogs (HKLM-x32\...\Sleeping Dogs_is1) (Version: - )
Snaz version 1.12.5.2 (HKLM-x32\...\{70A76031-FDC6-4F9B-BB5C-33776703F45A}_is1) (Version: 1.12.5.2 - JimsApps)
Sony Noise Reduction Plug-In 2.0e (HKLM-x32\...\{D533C9D4-ED96-4191-B9C3-279C0DD6BABA}) (Version: 2.0.444 - Sony)
Sony Sound Forge 9.0 (HKLM-x32\...\{6842DCCB-2840-4E46-8AF3-BEA9CFF3455B}) (Version: 9.0.297 - Sony)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Steinberg Hypersonic VSTi DXi v2.0 (HKLM-x32\...\Steinberg Hypersonic VSTi DXi_is1) (Version: - )
Street Fighter V (HKLM\...\Steam App 310950) (Version: - Capcom)
Sylenth1 v2.21 (HKLM\...\Sylenth1_is1) (Version: - )
Tony Hawk's Pro Skater 3® (HKLM-x32\...\Tony Hawk's Pro Skater 3®) (Version: 1.0 - Activision Publishing, Inc.)
Tony Hawk's Underground 2 (HKLM-x32\...\InstallShield_{EF1394D4-9FB6-4F1F-9A09-20FF3033AE14}) (Version: 1.00.0000 - Activision)
Tony Hawk's Underground 2 (x32 Version: 1.00.0000 - Activision) Hidden
Topaz Adjust 5 (HKLM-x32\...\Topaz Adjust 5) (Version: 5.0.1 - Topaz Labs, LLC)
Topaz B&W Effects (HKLM-x32\...\Topaz BW Effects 2) (Version: 2.1.0 - Topaz Labs, LLC)
Topaz Clarity (HKLM-x32\...\Topaz Clarity) (Version: 1.0.0 - Topaz Labs, LLC)
Topaz Clean 3 (HKLM-x32\...\Topaz Clean 3) (Version: 3.1.0 - Topaz Labs, LLC)
Topaz DeJpeg 4 (HKLM-x32\...\Topaz DeJpeg 4) (Version: 4.0.2 - Topaz Labs, LLC)
Topaz DeNoise 5 (HKLM-x32\...\Topaz DeNoise 5) (Version: 5.1.0 - Topaz Labs, LLC)
Topaz Detail 3 (HKLM-x32\...\Topaz Detail 3) (Version: 3.2.0 - Topaz Labs, LLC)
Topaz Fusion Express 2 (HKLM-x32\...\Topaz Fusion Express 2) (Version: 2.1.3 - Topaz Labs, LLC)
Topaz InFocus (HKLM-x32\...\Topaz InFocus) (Version: 1.0.0 - Topaz Labs, LLC)
Topaz Lens Effects (HKLM-x32\...\Topaz Lens Effects) (Version: 1.2.0 - Topaz Labs, LLC)
Topaz ReMask 4 (HKLM-x32\...\Topaz ReMask 4) (Version: 4.0.0 - Topaz Labs, LLC)
Topaz ReStyle (HKLM-x32\...\Topaz ReStyle) (Version: 1.0.0 - Topaz Labs, LLC)
Topaz Simplify 4 (HKLM-x32\...\Topaz Simplify 4) (Version: 4.1.1 - Topaz Labs, LLC)
Topaz Star Effects (HKLM-x32\...\Topaz Star Effects) (Version: 1.1.0 - Topaz Labs, LLC)
Trackmania Turbo (HKLM-x32\...\Trackmania Turbo_is1) (Version: - )
Try Hard Parking (HKLM\...\dHJ5aGFyZHBhcmtpbmc_is1) (Version: 1 - )
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Update for Skype for Business 2015 (KB3039776) 64-Bit Edition (HKLM\...\{90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{0FA8AE0C-69AE-4F60-A1AB-F79C6BA5A999}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB3114502) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{6F47687A-78E9-41B1-8587-ED0CC2677A2A}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB3114502) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{6F47687A-78E9-41B1-8587-ED0CC2677A2A}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB3114502) 64-Bit Edition (HKLM\...\{90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{6F47687A-78E9-41B1-8587-ED0CC2677A2A}) (Version: - Microsoft)
Uplay (HKLM-x32\...\Uplay) (Version: 19.1 - Ubisoft)
Vanquish (HKLM-x32\...\Vanquish_is1) (Version: - )
Vegas Pro 13.0 (64-bit) (HKLM\...\{D0360940-CCC6-11E3-B9C6-F04DA23A5C58}) (Version: 13.0.310 - Sony)
Virtua Tennis 3 (HKLM-x32\...\{9B63540D-D942-4C38-B42E-A48AE0145970}) (Version: 1.00.0000 - Sega)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.4.7.0 - Elaborate Bytes)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Vulkan Run Time Libraries 1.0.3.0 (HKLM\...\VulkanRT1.0.3.0) (Version: 1.0.3.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.)
Watch Dogs (HKLM-x32\...\Watch Dogs_R.G. Mechanics_is1) (Version: - R.G. Mechanics, spider91)
WBFS Manager 3.0 (HKLM-x32\...\WBFS Manager 3.0) (Version: 3.0 - AlexDP)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
WinRAR 5.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)
WinUsb CoInstallers (HKLM-x32\...\{9755918A-CDF8-4F1E-8453-6359CF1A330A}) (Version: 1.1.12.1526 - Microsoft)
WinUSB Compatible ID Drivers (HKLM-x32\...\{A4A0B236-6046-4CAB-8177-1EAF61112C75}) (Version: 1.1.11.1526 - Microsoft)
WinUSB Drivers ext (HKLM-x32\...\{B7F55FF1-607A-4E12-BF64-8770BC618D12}) (Version: 1.1.23.1526 - Microsoft)
Xvid Video Codec (HKLM-x32\...\Xvid Video Codec 1.3.3) (Version: 1.3.3 - Xvid Team)
Yousician Launcher version 1.0 (HKLM-x32\...\{EF45EAE9-523E-47C3-8634-A81923B11DD5}_is1) (Version: 1.0 - Yousician)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-4167156354-4277329575-767256593-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {060AD5B2-D38A-48D2-AA75-641A3C074730} - System32\Tasks\Opera scheduled Autoupdate 1496433852 => C:\Program Files\Opera\launcher.exe [2017-05-31] (Opera Software)
Task: {1D5C402B-0272-4CAC-9780-B4FC8DBDB005} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {1E6D9175-FE60-4863-A431-132EE05376D8} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03] (NVIDIA Corporation)
Task: {22796E48-8612-497A-8EB6-44B8CC8CC78E} - System32\Tasks\ASUS\USB 3.0 Boost Service => C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr.exe [2013-07-24] (ASUSTeK Computer Inc.)
Task: {2819AD0A-638E-4C87-8BE7-9DBCCAB26320} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-05-03] (NVIDIA Corporation)
Task: {2A15935C-833A-47FB-8886-29BD71310A03} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated)
Task: {326DC41C-0CE1-4700-8348-62090104A1ED} - System32\Tasks\Driver Booster SkipUAC (TEK) => C:\Program Files (x86)\IObit\Driver Booster\4.4.0\DriverBooster.exe [2017-05-03] (IObit)
Task: {45E73A3E-F997-422A-B3C8-4C1BBAFB3FDA} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {460E5191-2537-4180-A683-99384496C9AB} - System32\Tasks\ASUS\ASUS AISuiteIII => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [2013-10-22] (ASUSTeK Computer Inc.)
Task: {47A44C79-F8AC-486A-B58B-D797017230BD} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-05-03] (NVIDIA Corporation)
Task: {4F9C469D-D055-402A-BA17-33CA8EACFAF9} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-05-09] (Adobe Systems Incorporated)
Task: {505DB04B-5E93-4ED5-A562-98CC4E3ED0A8} - System32\Tasks\ASUS\ASUS DIPAwayMode => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe [2013-11-20] ()
Task: {5EDB92E4-AD5E-434E-BE2F-DA00BBD1AF5E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {63B1141E-3A75-4B88-A9F1-3899C168C936} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {66C07EF5-74E9-4EA2-A94B-722F3BC3643A} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\4.4.0\Scheduler.exe [2017-03-28] (IObit)
Task: {80DC2606-4500-4610-B074-C59C7658AEA0} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe [2017-02-21] (AVG Technologies CZ, s.r.o.)
Task: {81340BD0-EAFA-4BE4-9698-38AEB0536A4A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-11-21] (Piriform Ltd)
Task: {A512EF44-7632-43F0-9E71-B5FCB2AC11B1} - System32\Tasks\Origin => C:\Users\TEK\AppData\Roaming\Origin\update.vbe <==== ATTENTION
Task: {AFEE7E30-A4CB-42B7-BBEC-853886609424} - System32\Tasks\ASUS\Ez Update => C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe [2013-09-12] ()
Task: {B1CECD79-5895-41B0-B1F2-3BA9B9E2DE50} - System32\Tasks\{633E3C3A-15B7-43A5-A412-B72715B60B12} => pcalua.exe -a C:\Users\TEK\Downloads\chromeinstall-8u25.exe -d C:\Users\TEK\Downloads
Task: {B2218284-E991-4E0F-AA54-0EE89DE63863} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {C0D05543-5ED2-4050-8FD6-00F5832318B4} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-05-03] (NVIDIA Corporation)
Task: {C239A165-2923-4FB5-9B09-701E210C6DF0} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe
Task: {C6249FC6-2CB6-4276-99D0-F617EDE4220E} - System32\Tasks\ASUS\ASUS Network iControl Help Execute => C:\Program Files (x86)\ASUS\AI Suite III\Network iControl\NetSvcHelp\NetSvcHelpEntry.exe [2013-02-07] (ASUSTeK Computer Inc.)
Task: {D9F9229E-8068-4110-BE37-755B8951E882} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {E2B0165D-9C2C-4E03-A781-5CA2DC1416A0} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-05-03] (NVIDIA Corporation)
Task: {E98B2FA2-2433-49DB-8342-4FD1124C6D23} - System32\Tasks\AdobeAAMUpdater-1.0-TEK-PC-TEK => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-03-22] (Adobe Systems Incorporated)
Task: {F597D272-2EBB-4D40-B337-26C7F3CA4984} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-05-03] (NVIDIA Corporation)
Task: {F697163B-2F86-4CDA-8E99-2A16A5CB33CC} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-05-03] (NVIDIA Corporation)
Task: {F9C699E4-D09F-4878-A4A4-0C5F6BBB5943} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-05-03] (NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\TEK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Yamb 2.1.0.0 beta 2\Yamb - Website.lnk -> hxxp://yamb.unite-video.com
Shortcut: C:\Users\TEK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line\FL Studio 10\Image-Line website.lnk -> hxxp://www.image-line.com
Shortcut: C:\Users\TEK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line\FL Studio 10\Advanced\Diagnostic.lnk -> hxxp://www.image-line.com/diagnosti
Shortcut: C:\Users\TEK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line\FL Studio 10\Additional\Download Deckadance.lnk -> hxxp://www.deckadance.com
Shortcut: C:\Users\TEK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line\FL Studio 10\Additional\SynthMaker website.lnk -> hxxp://www.synthmaker.co.uk

==================== Loaded Modules (Whitelisted) ==============

2016-04-01 23:18 - 2016-04-01 23:18 - 00426160 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2015-09-15 14:58 - 2015-09-15 14:58 - 08901184 _____ () C:\Program Files\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2014-11-27 03:41 - 2013-09-12 11:35 - 01425208 _____ () C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe
2017-06-06 01:49 - 2017-06-03 10:21 - 02692440 _____ () C:\Program Files (x86)\Google\Chrome\Application\59.0.3071.86\swiftshader\libglesv2.dll
2017-06-06 01:49 - 2017-06-03 10:21 - 00137048 _____ () C:\Program Files (x86)\Google\Chrome\Application\59.0.3071.86\swiftshader\libegl.dll
2014-11-27 03:41 - 2013-09-12 19:01 - 05773368 _____ () C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzULIB.dll
2014-11-27 03:41 - 2017-05-31 11:51 - 00487424 _____ () C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\ImageHelper.dll
2014-11-26 02:12 - 2017-05-17 03:54 - 00678176 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2014-12-08 00:39 - 2016-09-01 03:02 - 04969248 _____ () C:\Program Files (x86)\Steam\v8.dll
2014-12-08 00:39 - 2016-09-01 03:02 - 01563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2014-12-08 00:39 - 2016-09-01 03:02 - 01195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2014-11-26 02:12 - 2017-06-08 07:42 - 02485536 _____ () C:\Program Files (x86)\Steam\video.dll
2014-11-26 02:12 - 2016-01-27 09:49 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2014-11-26 02:12 - 2016-01-27 09:49 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2014-11-26 02:12 - 2016-01-27 09:49 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2014-11-26 02:12 - 2016-01-27 09:49 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2014-11-26 02:12 - 2016-01-27 09:49 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2014-11-26 02:12 - 2017-06-08 07:42 - 00877856 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-03-10 01:56 - 2016-07-05 00:17 - 00266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2016-12-13 02:33 - 2017-05-08 21:45 - 69516064 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll
2017-06-10 18:48 - 2017-05-17 03:54 - 00678176 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\SDL2.dll
2014-11-26 02:12 - 2017-06-08 07:42 - 00385312 _____ () C:\Program Files (x86)\Steam\steam.dll
2014-12-24 19:32 - 2015-09-25 01:52 - 00119208 _____ () C:\Program Files (x86)\Steam\winh264.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="2"
e"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMSwissArmy => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PAexec => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PNP_TDI => ""="Driver Group"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Schedule => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMSwissArmy => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PAexec => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Schedule => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2015-11-24 15:59 - 00002649 _____ C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost
127.0.0.1 na1r.services.adobe.com
127.0.0.1 hlrcv.stage.adobe.com
127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 adobe.activate.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com

There are 46 more lines.


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-4167156354-4277329575-767256593-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\TEK\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\Services: Fax => 3
MSCONFIG\Services: LiveUpdateSvc => 2
MSCONFIG\Services: wuauserv => 2

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{52706327-188D-4827-95EC-D67454199E55}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{F65E9148-4AF9-4F00-8D4F-2085E9E4FB9D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{EFD1A4BB-7888-4206-A6B4-E950915F9AE5}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{871893B8-DA91-49ED-823E-EC8365DD1668}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{F5269ADF-9D71-41C5-BEE2-2FFF12D31897}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{FE265F35-D913-4F8C-9211-3396DF255C22}] => (Allow) C:\Users\TEK\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{9261DC33-DEA6-4BD0-933B-F9A385E8A38D}] => (Allow) C:\Users\TEK\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{A2961035-328B-4961-B547-76804CB44CF1}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{2837E7FE-61F0-4357-8BDE-1422C9CEAFCE}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{0716B266-6BB1-4E29-951B-762B7BCAC05D}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{89C1BBC7-0243-4DFA-9624-D0F0E79DC1D2}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [TCP Query User{B8925534-7398-461A-A0A0-C951D26BE8B3}E:\emulator gaming\ggpo-build-030\ggpo.exe] => (Allow) E:\emulator gaming\ggpo-build-030\ggpo.exe
FirewallRules: [UDP Query User{E1184C9C-1D79-4E06-A08E-3331F9F7B617}E:\emulator gaming\ggpo-build-030\ggpo.exe] => (Allow) E:\emulator gaming\ggpo-build-030\ggpo.exe
FirewallRules: [TCP Query User{9E5D3250-C133-4BC7-A944-68C260C7DB3B}E:\emulator gaming\outrun.2006.coast.2.coast.pc.game(djdevastate™)\or2006c2c.exe] => (Allow) E:\emulator gaming\outrun.2006.coast.2.coast.pc.game(djdevastate™)\or2006c2c.exe
FirewallRules: [UDP Query User{833D51D3-5E8B-4289-A89C-41325B3F73CB}E:\emulator gaming\outrun.2006.coast.2.coast.pc.game(djdevastate™)\or2006c2c.exe] => (Allow) E:\emulator gaming\outrun.2006.coast.2.coast.pc.game(djdevastate™)\or2006c2c.exe
FirewallRules: [{E9B7894A-ACC0-4678-9B22-94279FC7A052}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{92944011-6522-4A1F-BD14-987259E916E6}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{497D775C-B56B-4DAB-BAFF-AFA79B878CCB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{2D1015D2-A396-42FE-BDEA-99F8F027D59B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{49E740B6-50BC-4095-AA30-834293C8C422}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{DF25FA5B-8A94-4071-9CCD-3BE40114DE2D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{F2290458-25B1-4BB9-9262-735B79EE3D9B}E:\emulator gaming\mame32 plus! plus! v0.119 + kaillera\kaillera\kaillerasrv.exe] => (Allow) E:\emulator gaming\mame32 plus! plus! v0.119 + kaillera\kaillera\kaillerasrv.exe
FirewallRules: [UDP Query User{07EFF52F-833E-43B0-8F1E-2F80B99A14FC}E:\emulator gaming\mame32 plus! plus! v0.119 + kaillera\kaillera\kaillerasrv.exe] => (Allow) E:\emulator gaming\mame32 plus! plus! v0.119 + kaillera\kaillera\kaillerasrv.exe
FirewallRules: [TCP Query User{0F1D3950-AF4D-48A0-B907-0DBDBA9DC015}E:\emulator gaming\mame32 tunngle edition\kaillera\kaillerasrv.exe] => (Allow) E:\emulator gaming\mame32 tunngle edition\kaillera\kaillerasrv.exe
FirewallRules: [UDP Query User{4A307720-2A43-465C-92CD-4E543B182E1F}E:\emulator gaming\mame32 tunngle edition\kaillera\kaillerasrv.exe] => (Allow) E:\emulator gaming\mame32 tunngle edition\kaillera\kaillerasrv.exe
FirewallRules: [TCP Query User{DC12A024-F2E7-4D83-A86D-C4B083BDF5DB}E:\torrents\outrun.2006.coast.2.coast.pc.game(djdevastate™)\outrun.2006.coast.2.coast.pc.game(djdevastate™)\or2006c2c.exe] => (Allow) E:\torrents\outrun.2006.coast.2.coast.pc.game(djdevastate™)\outrun.2006.coast.2.coast.pc.game(djdevastate™)\or2006c2c.exe
FirewallRules: [UDP Query User{17C9D399-FF69-47F0-B0B3-8FB73B45DC7F}E:\torrents\outrun.2006.coast.2.coast.pc.game(djdevastate™)\outrun.2006.coast.2.coast.pc.game(djdevastate™)\or2006c2c.exe] => (Allow) E:\torrents\outrun.2006.coast.2.coast.pc.game(djdevastate™)\outrun.2006.coast.2.coast.pc.game(djdevastate™)\or2006c2c.exe
FirewallRules: [{CE7FD5D2-60CE-45D9-8C65-DA7C7A4E2EB4}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{CB428460-36CF-45B7-B822-861972B0F917}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [TCP Query User{A553116C-F9E9-472F-B4CA-BE670DBB1264}E:\emulator gaming\mame32 plus! plus! v0.119 + kaillera\mameppkgui-vc.exe] => (Allow) E:\emulator gaming\mame32 plus! plus! v0.119 + kaillera\mameppkgui-vc.exe
FirewallRules: [UDP Query User{5A910F8D-572A-44D1-A9F7-C3C8DB2012B1}E:\emulator gaming\mame32 plus! plus! v0.119 + kaillera\mameppkgui-vc.exe] => (Allow) E:\emulator gaming\mame32 plus! plus! v0.119 + kaillera\mameppkgui-vc.exe
FirewallRules: [TCP Query User{5DFCEA8D-7650-499A-BFB2-8167C229B946}E:\emulator gaming\ggpo-build-030\ggpo.exe] => (Allow) E:\emulator gaming\ggpo-build-030\ggpo.exe
FirewallRules: [UDP Query User{78B6D7F5-68F4-400A-9C3C-A3F501DBC6D3}E:\emulator gaming\ggpo-build-030\ggpo.exe] => (Allow) E:\emulator gaming\ggpo-build-030\ggpo.exe
FirewallRules: [TCP Query User{47047F25-22F5-47CF-AE95-145000966EC6}C:\users\tek\desktop\games\fightcade\fightcade.exe] => (Allow) C:\users\tek\desktop\games\fightcade\fightcade.exe
FirewallRules: [UDP Query User{5FBB8EB6-084F-462A-BD09-0BC6033F9351}C:\users\tek\desktop\games\fightcade\fightcade.exe] => (Allow) C:\users\tek\desktop\games\fightcade\fightcade.exe
FirewallRules: [{F653A1CE-32CE-4690-8C00-A16D791234C6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [TCP Query User{EC27F67A-ED4E-44D0-AD9C-500B842C730E}C:\users\tek\desktop\games\mame32++ 0.117 ki & bishi bashi\kaillera\kaillerasrv.exe] => (Allow) C:\users\tek\desktop\games\mame32++ 0.117 ki & bishi bashi\kaillera\kaillerasrv.exe
FirewallRules: [UDP Query User{3FFCF607-A23C-4841-9591-D4757A35701A}C:\users\tek\desktop\games\mame32++ 0.117 ki & bishi bashi\kaillera\kaillerasrv.exe] => (Allow) C:\users\tek\desktop\games\mame32++ 0.117 ki & bishi bashi\kaillera\kaillerasrv.exe
FirewallRules: [TCP Query User{7B5F4D67-155B-4FCA-B8B1-BC7220C423D8}E:\emulator gaming\mame32 tunngle edition\mameppkgui.exe] => (Allow) E:\emulator gaming\mame32 tunngle edition\mameppkgui.exe
FirewallRules: [UDP Query User{97850CCB-1855-4F22-A93E-511B65F47401}E:\emulator gaming\mame32 tunngle edition\mameppkgui.exe] => (Allow) E:\emulator gaming\mame32 tunngle edition\mameppkgui.exe
FirewallRules: [TCP Query User{EDEC88AB-8C82-46A0-A98B-D0FCDA29653B}C:\users\tek\desktop\games\fightcade\fightcade.exe] => (Allow) C:\users\tek\desktop\games\fightcade\fightcade.exe
FirewallRules: [UDP Query User{A91BAA98-E332-45B0-A179-350AFF26DBCD}C:\users\tek\desktop\games\fightcade\fightcade.exe] => (Allow) C:\users\tek\desktop\games\fightcade\fightcade.exe
FirewallRules: [TCP Query User{E9D465BA-5BBD-4D1A-82DD-7687E43662F6}C:\users\tek\desktop\games\fightcade\ggpofba.exe] => (Allow) C:\users\tek\desktop\games\fightcade\ggpofba.exe
FirewallRules: [UDP Query User{4C3B0A85-E8E9-41E3-AE39-08509FB7A5E7}C:\users\tek\desktop\games\fightcade\ggpofba.exe] => (Allow) C:\users\tek\desktop\games\fightcade\ggpofba.exe
FirewallRules: [TCP Query User{FE0A04DA-7122-4D67-AA0A-FEF1C3745FD1}C:\users\tek\desktop\games\fightcade\ggpofba-ng.exe] => (Allow) C:\users\tek\desktop\games\fightcade\ggpofba-ng.exe
FirewallRules: [UDP Query User{31384D2A-88F4-4B2D-A1FD-408D0B3D17C1}C:\users\tek\desktop\games\fightcade\ggpofba-ng.exe] => (Allow) C:\users\tek\desktop\games\fightcade\ggpofba-ng.exe
FirewallRules: [TCP Query User{08351096-B71E-4DBF-9EEE-F2BF85D4C915}E:\emulator gaming\mame32 plus! plus! v0.119 + kaillera\mameppkgui-vc.exe] => (Allow) E:\emulator gaming\mame32 plus! plus! v0.119 + kaillera\mameppkgui-vc.exe
FirewallRules: [UDP Query User{00D8A407-C221-4DE7-AD12-4B9F7949AE1A}E:\emulator gaming\mame32 plus! plus! v0.119 + kaillera\mameppkgui-vc.exe] => (Allow) E:\emulator gaming\mame32 plus! plus! v0.119 + kaillera\mameppkgui-vc.exe
FirewallRules: [{0F62078B-30FA-4F68-8D36-5A697657ECBE}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [TCP Query User{53EDF5FE-A1E6-4C5E-A3F6-4BDAC1C694D9}C:\users\tek\desktop\mameppk_bin_gcc-0.119-20070914\kaillera\kaillerasrv.exe] => (Allow) C:\users\tek\desktop\mameppk_bin_gcc-0.119-20070914\kaillera\kaillerasrv.exe
FirewallRules: [UDP Query User{AADC2B90-3B17-4CE9-BAC9-48920505CE29}C:\users\tek\desktop\mameppk_bin_gcc-0.119-20070914\kaillera\kaillerasrv.exe] => (Allow) C:\users\tek\desktop\mameppk_bin_gcc-0.119-20070914\kaillera\kaillerasrv.exe
FirewallRules: [TCP Query User{D641C7F2-8BEE-40A9-B877-C00F03296BE8}C:\users\tek\desktop\geometry.wars.3.dimensions.evolved.rip-unleashed\unl-gw3e\gw3.exe] => (Block) C:\users\tek\desktop\geometry.wars.3.dimensions.evolved.rip-unleashed\unl-gw3e\gw3.exe
FirewallRules: [UDP Query User{0408EBA3-9345-4375-94D9-D7969CD870F1}C:\users\tek\desktop\geometry.wars.3.dimensions.evolved.rip-unleashed\unl-gw3e\gw3.exe] => (Block) C:\users\tek\desktop\geometry.wars.3.dimensions.evolved.rip-unleashed\unl-gw3e\gw3.exe
FirewallRules: [{1583028F-AE92-4075-AD77-E1499180D0E4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\StreetFighterV\StreetFighterV.exe
FirewallRules: [{D891D0C2-B919-4934-B31F-D41BBF66CF7D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\StreetFighterV\StreetFighterV.exe
FirewallRules: [{303614A9-20C0-4EED-B29D-BA1E364029DE}] => (Allow) E:\STEAM\steamapps\common\DiRT 3 Complete Edition\dirt3_game.exe
FirewallRules: [{BBE99495-C65E-4273-A933-C46635E063DA}] => (Allow) E:\STEAM\steamapps\common\DiRT 3 Complete Edition\dirt3_game.exe
FirewallRules: [TCP Query User{9B4810CB-63D0-4DC1-98E2-F45DECF91999}E:\emulator gaming\1model2\emulators\m21\emulator_multicpu.exe] => (Allow) E:\emulator gaming\1model2\emulators\m21\emulator_multicpu.exe
FirewallRules: [UDP Query User{0D8F4DA1-BEA1-4810-A895-031E3C8282C9}E:\emulator gaming\1model2\emulators\m21\emulator_multicpu.exe] => (Allow) E:\emulator gaming\1model2\emulators\m21\emulator_multicpu.exe
FirewallRules: [{5CD1F18D-4528-40EE-A16B-83DE314F6387}] => (Allow) C:\Program Files (x86)\Mr DJ\Grand Theft Auto Vice City\gta-vc.exe
FirewallRules: [{26531CEE-163E-4F0E-83CB-53D2792AE39A}] => (Allow) C:\Program Files (x86)\Mr DJ\Grand Theft Auto Vice City\gta-vc.exe
FirewallRules: [{108E664E-C032-445D-8B7C-11B0049D31B5}] => (Allow) LPort=82
FirewallRules: [{12149013-156D-4ED2-B7EC-5CFA63F7005F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Premium Pool\PremiumPool.exe
FirewallRules: [{CA86A22A-3110-4C38-AA22-B2443424A7F9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Premium Pool\PremiumPool.exe
FirewallRules: [{D9F1DFAA-FE65-4A28-B3D8-CC6850386F7E}] => (Allow) C:\Program Files\Opera\45.0.2552.888\opera.exe
FirewallRules: [TCP Query User{9C1F5823-E8B7-4D0A-8B51-75D83445500F}E:\program files (x86)\formula fusion\formulafusion\binaries\win64\formulafusion-win64-shipping.exe] => (Allow) E:\program files (x86)\formula fusion\formulafusion\binaries\win64\formulafusion-win64-shipping.exe
FirewallRules: [UDP Query User{70E09578-4AAE-482A-A6F7-73F43A33323C}E:\program files (x86)\formula fusion\formulafusion\binaries\win64\formulafusion-win64-shipping.exe] => (Allow) E:\program files (x86)\formula fusion\formulafusion\binaries\win64\formulafusion-win64-shipping.exe
FirewallRules: [{21BAAFB0-72CF-4C2E-A30B-0D474BC8669B}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\DriverBooster.exe
FirewallRules: [{48549CAC-73F5-472F-A9E8-297ED13119FB}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\DriverBooster.exe
FirewallRules: [{D99959B2-C608-49E7-9E2A-4CC916F1608C}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\DBDownloader.exe
FirewallRules: [{EFFBE320-A619-4180-B493-787CBE530BEF}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\DBDownloader.exe
FirewallRules: [{3B15BCBC-FCBC-4BA3-9097-0FFCB1CE6840}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\AutoUpdate.exe
FirewallRules: [{B57C9121-B17C-41B2-A356-BB6B6D1DB651}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\AutoUpdate.exe
FirewallRules: [{31D6CE15-2EE6-4FC9-AE4C-E5764DB60764}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================


==================== Faulty Device Manager Devices =============

Name: Universal Serial Bus (USB) Controller
Description: Universal Serial Bus (USB) Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Security Processor Loader Driver
Description: Security Processor Loader Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: spldr
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (06/10/2017 08:17:48 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (06/10/2017 08:16:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: AISuite3.exe, version: 1.0.0.0, time stamp: 0x00000000
Faulting module name: KERNELBASE.dll, version: 6.1.7601.19110, time stamp: 0x56842600
Exception code: 0x0eedfade
Fault offset: 0x0000c42d
Faulting process id: 0x240
Faulting application start time: 0x01d2e215b03d60c2
Faulting application path: C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe
Faulting module path: C:\Windows\syswow64\KERNELBASE.dll
Report Id: f952cb20-4e08-11e7-8785-7824af3600f5

Error: (06/10/2017 08:16:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: DipAwayMode.exe, version: 0.0.0.0, time stamp: 0x00000000
Faulting module name: KERNELBASE.dll, version: 6.1.7601.19110, time stamp: 0x56842600
Exception code: 0x0eedfade
Fault offset: 0x0000c42d
Faulting process id: 0x370
Faulting application start time: 0x01d2e215b01c0d7e
Faulting application path: C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
Faulting module path: C:\Windows\syswow64\KERNELBASE.dll
Report Id: f952a410-4e08-11e7-8785-7824af3600f5

Error: (06/10/2017 07:59:14 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (06/10/2017 07:58:46 PM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: The Windows Search Service is being stopped because there is a problem with the indexer: The catalog is corrupt.

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (06/10/2017 07:58:46 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: The index cannot be initialized.

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (06/10/2017 07:58:46 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: The application cannot be initialized.

Context: Windows Application

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (06/10/2017 07:58:46 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: The gatherer object cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (06/10/2017 07:58:46 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: The plug-in in <Search.TripoliIndexer> cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:
Element not found. (HRESULT : 0x80070490) (0x80070490)

Error: (06/10/2017 07:58:41 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: The plug-in in <Search.JetPropStore> cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)


System errors:
=============
Error: (06/10/2017 09:01:05 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
The dependency service or group failed to start.

Error: (06/10/2017 09:01:05 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
The dependency service or group failed to start.

Error: (06/10/2017 09:01:05 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
The dependency service or group failed to start.

Error: (06/10/2017 08:58:59 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
The dependency service or group failed to start.

Error: (06/10/2017 08:58:59 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
The dependency service or group failed to start.

Error: (06/10/2017 08:58:59 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
The dependency service or group failed to start.

Error: (06/10/2017 08:53:59 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
The dependency service or group failed to start.

Error: (06/10/2017 08:53:59 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
The dependency service or group failed to start.

Error: (06/10/2017 08:53:59 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
The dependency service or group failed to start.

Error: (06/10/2017 08:51:51 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
The dependency service or group failed to start.


CodeIntegrity:
===================================
Date: 2015-05-10 00:19:37.798
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\kinonivd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-05-10 00:19:37.749
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\kinonivd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-05-10 00:19:09.972
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\kinonivad.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-05-10 00:19:09.945
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\kinonivad.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-11-27 20:40:33.302
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-11-27 20:40:33.272
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Processor: AMD Athlon(tm) X4 750K Quad Core Processor
Percentage of memory in use: 32%
Total physical RAM: 12228.05 MB
Available physical RAM: 8248.52 MB
Total Virtual: 23145.35 MB
Available Virtual: 19256.52 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.66 GB) (Free:12.45 GB) NTFS
Drive e: (Elements) (Fixed) (Total:872.92 GB) (Free:11.34 GB) NTFS
Drive f: (Windows 7 64) (Fixed) (Total:58.59 GB) (Free:7.09 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 97D45E9F)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 931.5 GB) (Disk ID: 002EFF23)
Partition 1: (Not Active) - (Size=872.9 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=58.6 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Re: pc stopt met laden windows

Geplaatst: 10 jun 2017 22:35
door PeterJ
Welkom,

Je computer heeft vermoedelijk een ramnit infectie opgelopen. Deze ernstige infectie infecteerd o.a. EXE, DLL, HTM, en HTML bestanden en kan zich verspreiden via externe media zoals USB-sticks en externe harde schijven.
Sluit deze daarom ook niet meer aan op deze computer tot deze schoon verklaart is, indien nog mogelijk.
Voer aub geen andere tools uit dan aangegeven in dit topic.

Let op: Herstart de computer telkens in veilige modus tenzij anders aangegeven.

Stap 1:
Download FxRamnit.exe en bewaar het bestand op je bureaublad.
Sluit nu eerst alle openstaande programma's.
Rechtsklik op het bestand FxRamnit en klik op "Als administrator uitvoeren".
Accepteer de EULA melding en klik vervolgens op Start zodat de tool zijn werk kan doen.
Na afloop zal de tool een melding geven en een logbestand (FxRamnit.log) aanmaken op dezelfde locatie vanwaar de tool gestart is.
Post dit logbestand als bijlage in je volgend bericht.

Stap 2:
Download Afbeelding esetsmartinstaller_enu.exe.
Dubbelklik erop om het te starten.
Vink aan YES, I accept the Terms of Use.
Klik op Start
Selecteer "Enable detection of potentially unwanted applications".
Klik op "Advanced settings".
Zet een vinkje bij:
- Remove found threats
- Scan archives
- Scan for potentially unsafe applications
- Enable Anti-Stealth technology

Let op: Schakel nu eerst je eigen virusscanner uit, het scannen met ESET gaat dan sneller.
Klik op Start
De computer wordt nu gescand. Dit kan een poos duren...
Na het scannen kan je het venster sluiten.
Let op: Schakel nu eerst je eigen virusscanner weer in.
Ga met de verkenner naar de map "C:\Program Files\ESET\ESET Online Scanner" of "C:\Program Files (x86)\ESET\ESET Online Scanner", afhankelijk van de Windows versie.
Post het daar aanwezige bestand log.txt als bijlage in je volgend bericht.

Re: pc stopt met laden windows

Geplaatst: 11 jun 2017 09:43
door RicoSuave
Hallo Peter bedankt voor de reply.
Heb het txt bestandje erbij gezet.
Nu ga ik stap 2 doen!

Re: pc stopt met laden windows

Geplaatst: 11 jun 2017 19:59
door RicoSuave
Stap 2 heb ik ook net gedaan.
Ik hoor de cpu nog steeds ratelen. Zit nu nog in safemode.
Log bestand zit in de bijlagen

Re: pc stopt met laden windows

Geplaatst: 11 jun 2017 21:05
door PeterJ
De Ramnit infectie heeft behoorlijk huisgehouden. (Meer dan 15000 geinfecteerde bestanden.)
De meeste bestanden zijn hersteld, echter sommige bestanden zijn onherstelbaar en verwijdert.
Hierdoor kan het zijn dat een aantal programma's niet meer goed werken en opnieuw geinstalleerd moeten worden.

Wat zijn de stations E: en F: ?

Stap 1:
We gaan eerst zorgen dat de computer steeds in Veilige modus start.
  • Klik daarvoor op Start.
  • Typ in het invoerveld MSCONFIG en druk op de enter toets.
  • Open het tabblad "Computer opstarten".
  • Vink aan "Opstarten in veilige modus" en selecteer daaronder "Netwerk".
  • Klik op "OK".
  • Opnieuw opstarten van de computer is niet nodig.
Stap 2:
We gaan de Farbar Recovery Scan Tool opnieuw gebruiken.
  • Download de bijlage fixlist.txt naar de map, waar ook FRST.exe aanwezig is.
  • Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met FRST.
  • Dubbelklik op Afbeelding FRST.exe om de tool te starten.
  • Druk op de knop Fixen.
  • Na de fix wordt een logbestand gemaakt (Fixlog.txt) op dezelfde plaats vanwaar de 'tool' is gestart.
  • Voeg dit logbestand als bijlage toe aan je volgend bericht.

Re: pc stopt met laden windows

Geplaatst: 11 jun 2017 21:48
door RicoSuave
Ja mijn computer had het zwaar, merkte het aan de cpu.

De E en F zijn eigenlijk 1 hardeschijf die ik had gesplits.
De Fixlog zit erbij.

Re: pc stopt met laden windows

Geplaatst: 11 jun 2017 22:43
door PeterJ
We gaan FxRamnit nogmaals gebruiken ter controle:

Sluit alle openstaande programma's.
Rechtsklik op het bestand FxRamnit en klik op "Als administrator uitvoeren".
Accepteer de EULA melding en klik vervolgens op Start zodat de tool zijn werk kan doen.
Na afloop zal de tool zal een melding geven en een logbestand (FxRamnit.log) aanmaken op dezelfde locatie vanwaar de tool gestart is.
Post dit logbestand als bijlage in je volgend bericht.

Re: pc stopt met laden windows

Geplaatst: 12 jun 2017 19:33
door RicoSuave
Yes heb het nogmaals laten scannen met fxramnit

Re: pc stopt met laden windows

Geplaatst: 12 jun 2017 20:05
door PeterJ
De bijlage die je post is van de vorige FRST actie.
Post aub het nieuwe logbestand van FxRamnit genaamd FxRamnit.log.

Re: pc stopt met laden windows

Geplaatst: 12 jun 2017 20:53
door RicoSuave
sorry. deze moet het dan zijn

Re: pc stopt met laden windows

Geplaatst: 12 jun 2017 21:12
door PeterJ
Oke, dat ziet er alvast goed uit. Geen nieuwe infecties.

Download Afbeelding aswMBR.exe naar je bureaublad.

Rechtsklik op "aswMBR.exe" en klik op "Als administrator uitvoeren"
Indien je de vraag krijgt, "This computer supports "Virtualization Technology". Would you like to use it for rootkit detection ?", klik Nee.
Op de vraag "Would you like to download latest Avast! virus definitions?", klik Nee.
In het zwarte venster dat verschijnt, klik SCAN.
Als de scan klaar is, klik SAVE LOG.
Post het logbestand als bijlage in je volgend bericht.
Klik op EXIT en dan op JA om het zwarte venster te sluiten.

Re: pc stopt met laden windows

Geplaatst: 13 jun 2017 16:17
door RicoSuave
Ok aswmbr scan gedaan

Re: pc stopt met laden windows

Geplaatst: 13 jun 2017 18:50
door PeterJ
Prima.
We gaan zo meteen Windows weer in normale modus starten. Sluit nog geen externe apparaten zoals USB-sticks en externe harde schijven aan.

Stap 1:
Download KB2286198: Beveiligingsupdate voor Windows 7 voor x64-systemen.
Installeer deze nog niet.

Stap 2:
We gaan zorgen dat de computer weer in Veilige modus start.
  • - Klik daarvoor op Start.
    - Typ in het invoerveld MSCONFIG en druk op de enter toets.
    - Open het tabblad "Computer opstarten".
    - Vink uit "Opstarten in veilige modus".
    - Klik op "OK".
    - Herstart de computer.
Stap 3:
Als Windows in normale modus opstart, installeer als eerste de beveiligingsupdate welke gedownload is in Stap 1.
Herstart de computer als daarom gevraagd wordt.
Update daarna je beveiligings-software (Malwarebytes & Windows Defender) en doe een complete systeemscan met beide programma's.

Vertel het resultaat hiervan.

Re: pc stopt met laden windows

Geplaatst: 15 jun 2017 19:06
door RicoSuave
Yes heb alles gedaan en het lijkt nu wel goed te gaan!
Heel erg bedankt voor je hulp Peter! :D